High severity8.8NVD Advisory· Published Oct 25, 2016· Updated Jun 17, 2026
CVE-2016-3505
CVE-2016-3505
Description
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to JavaServer Faces.
Affected products
5cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_server:12.2.1.0.0:*:*:*:*:*:*:*
- (no CPE)range: 10.3.6.0, 12.1.3.0, and 12.2.1.0
- Range: 10.3.6.0, 12.1.3.0, and 12.2.1.0
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.